CVE-2007-6211

Debian GNU/Linux - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-6211. PoCs published by bannedit.

AI-analyzed exploit summary This exploit leverages a file append vulnerability in the 'sing' utility to create a malicious logrotate configuration file. The configuration executes arbitrary commands as root when logrotate processes it, leading to privilege escalation.

Description

Send ICMP Nasty Garbage (sing) on Debian GNU/Linux allows local users to append to arbitrary files and gain privileges via the -L (output log file) option. NOTE: this issue is only a vulnerability in limited environments, since sing is not installed setuid, and the administrator would need to override a non-setuid default during installation.

Exploits (1)

exploitdb WORKING POC VERIFIED

by bannedit · clocallinux

https://www.exploit-db.com/exploits/4698

View Code ZIP pw:eip

This exploit leverages a file append vulnerability in the 'sing' utility to create a malicious logrotate configuration file. The configuration executes arbitrary commands as root when logrotate processes it, leading to privilege escalation.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: sing (version not specified)

No auth needed

Prerequisites: Presence of the 'sing' utility · Write access to /etc/logrotate.d/ · logrotate service running

MITRE ATT&CK